Replacement Sheet 



1/6 



,100 



140 



104 



Flash Program 
Memory 



112 



118 



102 



Sr 



RAM 



108 



Processing Circuits 



LE 



Microprocessor C=D 



7Y 



Timer and 



PSRAM 



controller 



1R0M 




Boot code 




hash code 




Public Key 




Authentic Code 





M16 
114 

128 
124 

122 
126 



EEPR0M 



Static data 



Hash values 



106 

132 
134 



FIG. 1 

(PRIOR ART) 



Replacement Sheet 



2/6 



140 



104- 

102- 
112- 



114- 
128- 

252- 
254- 

256- 
258- 

126 



Flash Program Z 4- 
Memory N- 



RAM 



IT 



Processing Circuits 



Microprocessor C 



IROM 



Boot code 



F1 — 1 



F2 



PK1 



PK2 



Authentic Code 



PS RAM 



Access level - 



Lev 1 status 



Lev 2 status 



108 



^116 
272 



274 
276 



200 



EEPROM 



280 



External device 



FIG. 2 



Replacement Sheet 



3/6 



300 



104 

380- 
352- 

354- 

356- 
358- 

362- 

102- 
112- 



Flash Program 


Memory 




F1 




F2 




PK1 




PK2 




Authentic Code 





128- 
114- 



Microprocessor < > 




Processing Circuits 



IR0M 



Boot code 



PSRAM 



Access level 



Lev 1 status 



Lev 2 status 



^-116 
-272 

280 
L 



-274 
276 



External device 



FIG. 3 



Replacement Sheet 



4/6 



RAM 



Flash Program 
Memory 



c 



Processing Circuits 



— 108 
140 



Microprocessor < * <> 



77 



IROM 



Boot code 



F1 



F2 



PK1 



PK2 



Authentic Code 



Session key 
code 



En/Decrypt 
code 



PSRAM 



challenge c 



Access level 



Lev 1 status 



Lev 2 status . 



Sess. key S2 



—116 

— 490 

— 272 

— 274 

— 276 

280 
484 2_ 



C==> 




WIRETAPPER 



400 



EEPROM 



External device 



FIG. 4 



Replacement Sheet 



5/6 



104-^. 

102— 
112- 

114- 
128- 

252- 
254- 

256- 
258- 

126 

482- 
486- 

590- 



Flash Program 
Memory 



RAM 



Processing Circuits 



flicroprocessor 



7y 



IROM 



Boot code 



F1 -* 1 



F2 



PK1 



PK2 



Authentic Code 



Session key 
code 



En/Decrypt 
code 



MAC code 



PSRAM 



Access level 



Lev 1 status 



Lev 2 status 



Session Key 



108 



140 



:> 



^116 
272 



— 274 

— 276 
•484 



500 



EEPROM 




ACTIVE 
WIRETAPPER 



External device 



Secure processor 



Private Key 1 



Private Key 2 



Authentic Code 



F1 control 
code 



F2 control 
code 



Session key 
code 



106 



En/Decrypt 
code 



MAC code 



h-570 

572 

-576 
-578 
-574 

-586 

-588 

-580 
-582 

1—584 



FIG. 5 



Replacement Sheet 



6/6 



600 



•670 



System 



Select public key 

Store challenge 

Check response 
store result In lev n 
status 

Compute session 
key S2: 



Random r2 

k2=y1 r2 mod N 
S2=H(k2,c) 



Y'= Decrypted data 
with key S2 

If T=T accept X 1 as 
the value of X 
otherwise declare Y 
to be invalid 



External device 



n-select signal 



X 2 mod N 



Challenge c 



response 



Authentication status 



yi 



y2 



y. T 



Access level 
selection 602 

Authentication 604 



Compute session 
key S1: 

Random rl ^606 



k1=y2 r1 mod N 
S1=H(k1,c) 



Y=Encrypted data X 
with key 51 608 
T=MAC(S1, Y) 610 



FIG. 6 



